Globalscape Terms Patched -

| Vulnerability | Affects Version Before | Patched In | |---------------|------------------------|-------------| | CVE-2023-2989 | 8.1.0.16 | 8.1.0.16 | | CVE-2023-2990 | 8.1.0.16 | 8.1.0.16 | | CVE-2023-2991 | 8.1.0.16 | 8.1.0.16 | | Zip Slip directory traversal | Older EFT versions | Recent updates |

In June 2023, Rapid7 researchers disclosed four vulnerabilities in the Globalscape EFT administration server (port 1100 by default). The issues affected versions 8.0.x up to 8.1.0.14 and were largely resolved in : globalscape terms patched

To help tailor the next steps for your infrastructure, tell me: What of Globalscape EFT are you running? | Vulnerability | Affects Version Before | Patched

means a Globalscape software version has had one or more official patches applied, either via the auto-update mechanism, manual installer, or support-provided hotfix. Never apply a security patch directly to a

Never apply a security patch directly to a production GlobalScape server. Set up a staging environment that mirrors your production configuration, including user authentication sources (Active Directory or LDAP) and database connections. Run a suite of test transfers to ensure the patch does not break existing automated workflows. Take Complete Backups Before Upgrading

Multiple Vulnerabilities in Fortra Globalscape EFT ... - Rapid7